This is the official Security Enhanced Linux (SELinux) project page. Here you will find resources for users, administrators, vendors and developers.

−

This is the Wiki for the [http://www.nsa.gov/selinux/ Security Enhanced Linux] (SELinux) project.

+

−

</p>

+

−

<p>

+

For an account, send email to jmorris AT namei.org.

−

For an account, send email to jmorris@namei.org.

+

−

</p>

+

−

== SELinux Resources ==

+

= What is SELinux =

+

SELinux is a security enhancement to Linux which allows users and administrators more control over access control.

−

* [[User Resources]] Resources for SELinux users

+

Access can be constrained on such variables as which users and applications can access which resources. These resources may take the form of files. Standard Linux access controls, such as file modes (-rwxr-xr-x) are modifiable by the user and the applications which the user runs. Conversely, SELinux access controls are determined by a policy loaded on the system which may not be changed by careless users or misbehaving applications.

−

* [[Kernel Development]] SELinux kernel development page

+

SELinux also adds finer granularity to access controls. Instead of only being able to specify who can read, write or execute a file, for example, SELinux lets you specify who can unlink, append only, move a file and so on. SELinux allows you to specify access to many resources other than files as well, such as network resources and interprocess communication (IPC).

−

* [[Userspace Development]] SELinux userspace development page

+

For more information about SELinux see the [[FAQ]] and other resources listed here.

−

* [[Developer Resources]] Information for developers working with SELinux systems

+

[[FAQ]]

−

* [[Documentation]] Documentation about SELinux

+

[[NewUsers | New Users]]

−

* [[Project Links]] Links to various related projects

+

[[AdminDocs | Administrators and users]]

+

+

[[AdvancedUsers | Advanced Users]]

+

+

[[Vendors]]

+

+

[[Developers]]

+

+

[[Conferences | SELinux summit and conference information]]

+

+

[[User Resources | Additional Resources]]

+

+

[[:Category:UseCases | Use cases]]

+

+

[[Experimenters Corner]]

Revision as of 17:08, 10 February 2012

SELinux Project Wiki

This is the official Security Enhanced Linux (SELinux) project page. Here you will find resources for users, administrators, vendors and developers.

For an account, send email to jmorris AT namei.org.

What is SELinux

SELinux is a security enhancement to Linux which allows users and administrators more control over access control.

Access can be constrained on such variables as which users and applications can access which resources. These resources may take the form of files. Standard Linux access controls, such as file modes (-rwxr-xr-x) are modifiable by the user and the applications which the user runs. Conversely, SELinux access controls are determined by a policy loaded on the system which may not be changed by careless users or misbehaving applications.

SELinux also adds finer granularity to access controls. Instead of only being able to specify who can read, write or execute a file, for example, SELinux lets you specify who can unlink, append only, move a file and so on. SELinux allows you to specify access to many resources other than files as well, such as network resources and interprocess communication (IPC).

For more information about SELinux see the FAQ and other resources listed here.